Open jakedoublev opened 4 months ago
This could be related to #873 or the same issue, but I wasn't sure so wanted to document the steps to reproduce here.
This might also be stemming from an issue in @opentdf/client-web instead as the validation error is client-side.
Adding both endpoints to the allowedKases
in the client config options did not lead to successful decryption.
With an authenticated SDK in a Go service, I am able to successfully encrypt a TDF3 with the following:
When I save the bytes to a file, and
cat
it, I get:When I decrypt in the browser using a TDF3Client from opentdf/client-web, I get an error
KasUpsertError: Unexpected KAS url: [https://myhost:8080]
.However, If I create my TDF3 in my Go service with the below, I get no such error in the browser and am able to decrypt successfully:
When I inspect that TDF, it looks like:
This appears to be incompatibility between TDF3s created through gRPC-driven flows and those created through RESTful flows.